CVE-2001-1496 — CRITICAL severity vulnerability (Off-by-one buffer overflow in Basic Authentication in Acme L)
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
| CVE ID | CVE-2001-1496 |
|---|---|
| Severity | CRITICAL |
| CVSS score | 9.8 |
| CVSS vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| CWE | CWE-193 |
| Status | Modified |
| Published | 2001-12-31 |
| Last modified | 2026-04-16 |
| Description | Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →